Security Directory

L

literaturgebiet.ruhr

literaturgebiet.ruhr

63

literaturgebiet.ruhr is a regional cultural and literary platform based in Germany's Ruhr area, focusing on promoting literature through events, poetry slams, and magazine content. The website serves a niche audience of literature enthusiasts and local cultural participants, operating likely as a small-scale or non-profit organization. The platform offers event information, literary articles, and community engagement opportunities, positioning itself as a key regional player in literary arts promotion. Technically, the website is built on WordPress with modern SEO practices using the Yoast plugin and includes responsive design elements for mobile users. The site uses HTTPS with good SSL configuration and basic cookie consent mechanisms, indicating a reasonable level of digital maturity. However, no advanced security headers or explicit security policies are published, and no direct contact forms or incident response channels are visible. From a security perspective, the site maintains a good posture with encrypted connections and no visible vulnerabilities or exposed sensitive data. Privacy compliance is addressed through accessible privacy and cookie policies, though terms of service and security incident contacts are absent. The site does not employ extensive tracking or advertising technologies, aligning with its cultural and non-commercial nature. Overall, literaturgebiet.ruhr presents a trustworthy and professionally maintained platform with a clear cultural mission. Strategic improvements could include enhanced security headers, explicit incident response information, and expanded contact options to further strengthen trust and compliance.

L

Literaturbüro Ostwestfalen-Lippe in Detmold e.V.

literaturbuero-owl.de

50

Literaturbüro OWL is a small non-profit cultural organization based in Detmold, Germany, dedicated to promoting literature through events such as readings, youth literature programs, and author workshops. The website reflects a well-established regional cultural institution with a clear focus on literary engagement and education. Their market position is regional with a strong community orientation. The organization leverages digital tools including a WordPress CMS, SEO optimization via Yoast, and cookie consent management to ensure compliance and user experience. The site is well-branded, professionally designed, and provides comprehensive event and organizational information. Technically, the site uses modern web technologies and is hosted under a reputable domain registrar with secure HTTPS configuration. Security posture is good with cookie consent and no visible vulnerabilities, though security headers could be improved. Privacy compliance is strong with a detailed privacy policy and cookie consent mechanism. Contact information is clearly presented, enhancing business credibility. Overall, the site is trustworthy and professionally maintained.

Z

Združenie informatikov samospráv Slovenska

ziss.sk

53

Združenie informatikov samospráv Slovenska (ZISS) is a Slovak non-profit association dedicated to uniting IT professionals working in local government and public administration. Established in 2007, the organization focuses on fostering communication, knowledge exchange, and professional development through conferences and projects such as ZlatyErb.sk. The website serves as an information hub for members and interested parties, providing news, event details, and resources relevant to the public sector IT community in Slovakia. Technically, the website is built on WordPress and leverages common web technologies including jQuery, Google Analytics, and FontAwesome. It is hosted on WebSupport infrastructure with DNSSEC enabled and uses HTTPS, indicating a baseline of security best practices. However, the site lacks explicit privacy and cookie policies, and no consent mechanisms are present, which are important for GDPR compliance. The site also does not publish a security policy or incident response contacts, limiting transparency in security governance. From a security perspective, the site benefits from HTTPS and DNSSEC, and the presence of Wordfence scripts suggests some level of active security monitoring. Nonetheless, the absence of HTTP security headers and vulnerability disclosure policies represents areas for improvement. User tracking via Google Analytics is implemented without visible consent, which may pose privacy compliance risks. Overall, the security posture is moderate but could be enhanced with additional controls and transparency. The website content is professional and relevant to its target audience, with clear navigation and consistent branding. The domain registration data aligns well with the organization's history and purpose, supporting legitimacy. No adult or questionable content is present, making the site safe for general audiences. Strategic recommendations include implementing comprehensive privacy and cookie policies, enhancing security headers, and publishing incident response information to improve trust and compliance.

S

Salz & Pfeffer

internetagentur-stuttgart.de

40

Salz & Pfeffer is a specialized online marketing agency based in Stuttgart, Germany, focusing on Google Ads, SEO, social media marketing, and web design. As a Google Partner, they provide tailored digital marketing solutions to businesses aiming to improve their online presence and growth. Their website reflects a professional and modern digital agency with a clear service portfolio and strong local market focus. The technical infrastructure is built on WordPress with common industry plugins and frameworks, ensuring a good user experience and mobile optimization. Security measures include HTTPS, reCAPTCHA on forms, and GDPR-compliant cookie consent, although some security headers could be enhanced. Overall, the site demonstrates a solid security posture with no critical vulnerabilities detected. The domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

M

Mein Erbe tut Gutes. Das Prinzip Apfelbaum

mein-erbe-tut-gutes.de

48

Mein Erbe tut Gutes. Das Prinzip Apfelbaum is a German non-profit initiative focused on educating and supporting individuals who wish to include charitable causes in their testament and inheritance planning. The website offers a variety of free services including informational brochures, online lectures, video tutorials, and an inheritance calculator. It is supported by a network of reputable partner organizations and foundations, enhancing its credibility and reach. The initiative targets individuals interested in philanthropy through legacy giving, providing practical and accessible resources to facilitate this process. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Borlabs Cookie for privacy compliance. It employs responsive design and accessibility best practices, ensuring a good user experience across devices. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. No critical vulnerabilities or suspicious activities were detected. Overall, the site demonstrates a high level of professionalism, trustworthiness, and compliance with GDPR and privacy standards.

R

RADIO NRW

radionrw.de

44

RADIO NRW operates as Germany's largest local radio network, connecting 45 local radio stations across North Rhine-Westphalia. The company offers a comprehensive media and advertising platform, combining local proximity with broad reach, targeting advertisers and radio listeners in the region. The website is professionally designed, content-rich, and optimized for mobile devices, reflecting a mature digital presence. Technically, the site is built on WordPress with UIkit and jQuery, hosted likely by Deutsche Telekom, and uses Matomo analytics and Usercentrics for cookie consent. Security posture is adequate with HTTPS and consent mechanisms but lacks visible security headers and formal security policies. Privacy compliance is partial due to missing explicit privacy and terms of service pages. Overall, the site is trustworthy and well-positioned in the media sector with room for improvement in security and compliance documentation.

R

Region Fulda

region-fulda.de

72

Region Fulda operates as a regional government portal providing information and services related to the Fulda region in Germany. The website emphasizes tradition and innovation, targeting residents and visitors interested in regional development and community events. The business model centers on public service and regional promotion, positioning itself as a key information hub within the government sector. Technically, the site is built on WordPress using the Divi theme, enhanced with multilingual support via Weglot and cookie consent management through Cookiebot. The infrastructure is modern and includes SEO optimizations and analytics tracking via Etracker. Security posture is strong with HTTPS and Content Security Policy headers implemented, though there is room for improvement in privacy compliance documentation and contact transparency. Overall, the site is professional, trustworthy, and well-structured, serving its public sector audience effectively.

S

Sparkassen Immobilien GmbH Aachen

s-immo-aachen.de

64

Sparkassen Immobilien GmbH Aachen operates as a leading real estate brokerage firm in the Aachen region, offering comprehensive services including property sales, rentals, valuations, energy consulting, and new development projects. The company leverages its strong regional expertise and partnerships, notably with Sparkasse Aachen for financing solutions, to maintain a dominant market position. The website reflects a mature digital presence built on WordPress with modern plugins and integrations, supporting a professional user experience and effective customer engagement. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though some security headers could be improved. The site demonstrates good privacy compliance with a comprehensive privacy policy and cookie management. Overall, the business credibility is high, supported by multiple certifications and positive customer reviews.

E

Euregionales Medienzentrum

medienzentrum-aachen.de

51

The Medienzentrum Aachen operates as a regional center for digital education, focusing on providing educational resources and media competence support primarily to schools and educators in the Euregio Aachen region. The website reflects a small-sized educational institution with a clear mission to enhance digital literacy and media usage in education. Technically, the site is built on WordPress with standard plugins and libraries such as Bootstrap and jQuery, hosted likely by a regional provider (RegioIT Aachen). The site is moderately performant and well-optimized for mobile devices, with a good level of SEO and accessibility features. From a security perspective, the website enforces HTTPS and implements a GDPR-compliant cookie consent mechanism, including third-party integrations with Google and YouTube that use tracking cookies. While no explicit security policy or incident response information is published, the site follows basic security best practices. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns well with the business location and shows no suspicious patterns, supporting the legitimacy of the domain. Overall, the website presents a professional and trustworthy digital presence for an educational institution. It is safe for general audiences and complies with relevant privacy regulations. Strategic recommendations include enhancing security headers, publishing a security policy or incident response contact, and considering a vulnerability disclosure policy to further strengthen trust and compliance.

W

Home -

wsh-hatten.de

41

The website www.wsh-hatten.de is a WordPress-based site using the Astra theme and Elementor page builder, optimized with WP Rocket and Yoast SEO. The site appears to be a small business or local entity with minimal content and lacks detailed business descriptions or contact information. The technical infrastructure is standard for WordPress sites, hosted on Alfahosting servers, with external resources loaded from common domains such as Google Fonts and Usercentrics for consent management. Security posture is weak due to the absence of security headers and explicit policies. No privacy, cookie, or terms of service policies are present, indicating low compliance with GDPR and related regulations. The site is accessible without WAF or security challenges, but lacks transparency and trust signals. Overall, the site scores low on business credibility and privacy compliance, with moderate technical implementation and basic content quality.

B

BRAINYOO Cloud Lernsoftware - die Lernkartei zum einfachen Auswendiglernen

brainyoo.de

62

BRAINYOO is a German-based educational software company specializing in cloud-based learning software and flashcard applications designed for students and learners across schools, vocational training, further education, and university levels. The company offers a SaaS model with a focus on effective e-learning solutions, positioning itself as a reputable provider in the education technology sector. The website demonstrates a professional digital presence with consistent branding and a clear value proposition targeting learners seeking efficient memorization tools. Technically, the website is built on WordPress with WooCommerce for e-commerce capabilities and Elementor for design. It integrates modern SEO and cookie consent tools such as Yoast SEO and Real Cookie Banner Pro, alongside Google Analytics and Google Tag Manager for analytics and marketing. The hosting infrastructure uses domaincontrol.com name servers, indicating a standard domain registrar setup. Performance and mobile optimization are good, though accessibility features are basic. From a security perspective, the site employs HTTPS with a good SSL configuration and uses Wordfence for protection. Cookie consent is managed compliantly with GDPR requirements. However, some advanced HTTP security headers are missing, and no explicit security policy or incident response information is publicly available. No vulnerabilities or exposed sensitive data were detected in the analysis. Overall, the website is safe, professional, and compliant with privacy regulations, serving a general audience without any adult or questionable content. The domain registration data is limited but does not raise concerns. Strategic recommendations include enhancing security headers, publishing security policies, and improving accessibility to further strengthen trust and compliance.

E

EURES Slovensko

eures.sk

58

EURES Slovensko operates as the official Slovak national portal for the European Employment Services network, providing verified job offers, seasonal work opportunities, and advisory services for job seekers and employers interested in employment mobility within the European Union. The website targets Slovak citizens and employers, offering comprehensive information about working abroad, financial support, and legal employment conditions. The business model is government-oriented, focusing on facilitating labor mobility and employment support rather than commercial profit. Technically, the website is built on WordPress with a modern plugin ecosystem including caching, multilingual support via WPML, and Google Analytics for visitor insights. The site demonstrates good mobile optimization and SEO practices, though accessibility features are basic. Performance is moderate, with room for improvement in loading speed and technical modernization. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms aligned with GDPR. However, it lacks several important security headers such as Content-Security-Policy and X-Frame-Options, which could enhance protection against common web attacks. No explicit security or incident response policies are published, and no vulnerability disclosure or security.txt files are found. Overall, the security posture is adequate but could be improved with additional hardening and transparency. The overall risk assessment is low given the official nature and content safety of the site. Strategic recommendations include implementing missing security headers, publishing privacy and security policies, enhancing accessibility, and maintaining regular security audits. These steps will strengthen trust, compliance, and resilience against emerging threats.

F

Farnosť Breznička

farnostbreznicka.sk

51

Farnosť Breznička is a small non-profit religious organization serving the local parish community in Slovakia. The website provides parish announcements, historical information, and details about affiliated filial churches, targeting Slovak-speaking parishioners and visitors interested in the parish activities. The business model is community-focused and non-commercial, emphasizing information dissemination and community engagement. Technically, the website is built on WordPress with WooCommerce plugins, uses jQuery and Google Analytics for tracking, and is hosted on a provider inferred to be Websupport. The site is moderately optimized for mobile devices and has a moderate performance profile. SEO and accessibility features are basic but functional. From a security perspective, the site uses HTTPS with DNSSEC enabled, which is positive. However, it lacks advanced security headers such as Content-Security-Policy and HSTS, which could improve its security posture. No vulnerabilities or exposed sensitive data were detected in the provided content. Privacy compliance is basic, with a cookie consent banner present but no visible privacy policy or terms of service pages. Overall, the website is trustworthy and legitimate, with consistent WHOIS data and domain registration appropriate for its age and purpose. The site is safe for general audiences and does not contain any adult or explicit content. Strategic improvements in security headers and privacy documentation would enhance its compliance and security posture.

E

e-kroniky.sk

e-kroniky.sk

53

e-kroniky.sk is a Slovak digital archive platform specializing in the digitization and online accessibility of municipal and city chronicles. The website targets local historians, municipalities, and the general public interested in Slovak local history. It offers services such as digitalization of chronicles, restoration, and scanning of negatives, positioning itself as a niche service in the Slovak digital archival space. Technically, the site is built on WordPress using Elementor and Yoast SEO, with integrations for Google Site Kit and StatCounter for analytics. The site demonstrates moderate to good performance and mobile optimization with a consistent branding approach. Security-wise, the site enforces HTTPS and GDPR-compliant cookie consent but lacks explicit security headers and a formal security policy. No critical vulnerabilities or blocking mechanisms were detected. Overall, the site is safe, professional, and compliant with privacy regulations, though it could improve in areas such as contact transparency and security header implementation.

F

FrontDesk

frontdesksuite.com

50

FrontDesk is a specialized SaaS provider offering a leading Queue Management System (QMS) tailored primarily for the public sector, including government agencies, healthcare, and higher education institutions. The company emphasizes eliminating wait times through online bookings, smart kiosks, and mobile check-in solutions. Their market position is strong with documented client testimonials from notable government entities and a global presence. Technically, the website is built on WordPress with modern JavaScript libraries and integrates multilingual support, analytics, and cookie consent mechanisms, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforced and domain transfer protections, though improvements such as DNSSEC and security headers are recommended. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent. Overall, the website projects professionalism, trustworthiness, and a clear business focus on public sector queue management solutions.

A

AWA Entsorgung GmbH

awa-gmbh.de

51

AWA Entsorgung GmbH is a regional waste management company serving approximately 820,000 residents in the Aachen and Düren regions of Germany. The company provides comprehensive waste disposal, recycling, hazardous waste collection, and environmental services with a strong emphasis on sustainability and regulatory compliance. Their website reflects a well-established public service entity with clear communication channels and educational outreach. Technically, the site is built on WordPress with Elementor, leveraging modern web technologies and SEO best practices. Security posture is solid with HTTPS, cookie consent, and no visible vulnerabilities, though formal security policies and incident response contacts are not published. Overall, the website is professional, trustworthy, and compliant with GDPR requirements.

K

kowerk - Markenagentur

kowerk.de

48

kowerk is a German full-service brand agency specializing in digital branding, content creation, web design, film, and photo production. Founded in 2022, the company positions itself as a creative partner for businesses seeking to build distinctive and visible brands. The website reflects a professional and consistent brand image, targeting businesses looking for comprehensive branding solutions. Technically, the site is built on WordPress with Elementor, leveraging modern web technologies and analytics tools such as Google Analytics, Facebook Pixel, and Matomo. The hosting is managed via kasserver.com, and the site employs cookie consent mechanisms compliant with GDPR. Security posture is solid with HTTPS and consent management, though explicit security policies and incident response contacts are not published. Overall, the site is trustworthy and well-maintained, with room for improvement in privacy and security transparency.

H

Hackathon Fulda

hackathon-fulda.de

63

Hackathon Fulda is a regional technology event organizer focused on hosting annual hackathons in Fulda, Germany. The website promotes the upcoming 7th edition of the hackathon, emphasizing innovative challenges, prize money, and community engagement. The target audience includes coders, students, and technology enthusiasts interested in developing solutions for crisis and disaster scenarios. Technically, the website is built on WordPress using Elementor and Yoast SEO, indicating a modern and maintainable infrastructure. The site is mobile optimized and uses HTTPS, but lacks some security headers and formal privacy and cookie policies. Social media presence is established via Instagram, and sponsorships from reputable local companies enhance credibility. Overall, the website is professional and functional but could improve privacy compliance and security posture.

de lege data is a specialized German-language blog providing comprehensive legal analysis and updates on data protection, privacy, and GDPR-related topics. The website serves data protection professionals, legal experts, and companies seeking detailed insights into European data protection law. It is positioned as a niche expert resource with high-quality content authored by Carlo Piltz. Technically, the site runs on WordPress with common web technologies like jQuery and Modernizr, hosted on German infrastructure. The site is accessible, mobile-optimized, and well-structured, though it lacks explicit cookie consent mechanisms and visible contact information. Security posture is moderate with no detected advanced security headers or incident response contacts. Overall, the site is trustworthy and professional but could improve in security best practices and privacy compliance transparency.

C

CBS spol, s.r.o.

slovenskozneba.sk

51

CBS spol, s.r.o. operates the website slovenskozneba.sk, offering aerial photography, videography, and related media services focused on Slovakia. The company has established a strong market position with a large database of aerial images and a significant number of published books. Their business model includes professional aerial imaging services, book publishing, and experiential flights. The website is built on WordPress with Bootstrap, reflecting a modern and responsive design. While the site uses HTTPS and Google Analytics, it lacks some security headers and a cookie consent mechanism, which are areas for improvement. Contact information and company details are clearly presented, supporting business credibility. Overall, the site is professional, trustworthy, and well-structured, with moderate user tracking and basic privacy compliance.

S

Spreewald Therme

spreewald-therme.de

60

Spreewald Therme operates as a regional hospitality and wellness provider located in Germany's Spreewald region, offering spa, thermal baths, and hotel accommodations. The website is built on WordPress using the Elementor framework, indicating a modern and flexible technical infrastructure. The site demonstrates good design quality, mobile optimization, and SEO practices, providing a positive user experience for its target audience. However, the absence of explicit privacy and cookie policies, as well as limited contact details, indicates gaps in privacy compliance and business transparency. Security posture is moderate, with HTTPS usage implied but lacking visible security headers or advanced protections. Overall, the website is functional and professional but would benefit from enhanced privacy and security measures to improve trust and compliance.

G

G DATA Software Sp. z o.o.

gdata.pl

74

G DATA Software Sp. z o.o. is a well-established Polish company specializing in antivirus and IT security software solutions for both businesses and individual users. Founded in 1995, the company boasts a long history and a strong market position as a leading provider of cybersecurity products. Their website, gdata.pl, reflects a professional and comprehensive digital presence, offering a range of security products and services with clear branding and consistent messaging. The company targets a broad audience including small to medium enterprises and private customers, emphasizing protection against internet threats and hacking attacks. Technically, the website is built on WordPress with WooCommerce and Elementor, integrating modern marketing and analytics tools such as Google Tag Manager, SalesManago, and Cookiebot for consent management. The site demonstrates good SEO optimization, mobile responsiveness, and moderate performance. Privacy compliance is well addressed with explicit privacy and cookie policies, including GDPR consent mechanisms. From a security perspective, the site uses HTTPS with good SSL configuration and employs cookie consent to manage tracking. However, some security headers are not explicitly detected, and there is no visible security policy or incident response information published. No vulnerabilities or suspicious content were found, indicating a solid security posture but with room for improvement in transparency and formal security documentation. Overall, gdata.pl presents a trustworthy and professional online presence consistent with its business claims. The domain's long age and WHOIS data support legitimacy. Strategic recommendations include enhancing security headers, publishing a security policy and incident response contacts, and considering a vulnerability disclosure policy to further strengthen trust and compliance.

P

Par drošību!

pardrosibu.lv

47

Par drošību! is a Latvian media outlet specializing in security news covering areas such as physical security, fire safety, cybersecurity, data protection, environmental and labor safety, and national security topics. The website serves a Latvian-speaking audience interested in up-to-date security information and government-related security news. The business operates as a niche media publication with a small organizational size and was founded in 2020. It maintains a consistent brand presence with active social media channels and structured data for SEO. Technically, the website is built on WordPress CMS using common plugins like WPBakery Page Builder and Rank Math SEO. It integrates Google Analytics and Google Tag Manager for analytics and uses HTTPS with a good SSL configuration. The site is moderately performant and mobile-optimized, though some minor PHP warnings indicate areas for technical improvement. From a security perspective, the site enforces HTTPS and uses some security best practices such as rel='noopener noreferrer' on external links. However, it lacks a Content-Security-Policy header and a security.txt file for vulnerability disclosure. The visible PHP warning from a plugin suggests a need for code maintenance to avoid potential information leakage. Privacy compliance is weak, with no visible privacy or cookie policies, which is a significant gap given GDPR requirements. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance and security hardening. Strategic improvements in these areas would strengthen its security posture and user trust.

S

suparo GmbH

suparo.de

46

suparo GmbH is a small, established online marketing and SEO agency based in Karlsruhe, Germany, founded in 2010. The company offers a comprehensive suite of digital marketing services including SEO, SEA (Google Ads), web design, social media marketing, and GDPR compliance services. Their market position is that of a trusted local expert with notable client references such as IKEA and Continental, supported by certifications like Google Partner and media liability insurance. The website is professionally designed, content-rich, and well-structured, targeting businesses seeking to improve their online presence. Technically, the website runs on WordPress with modern plugins and tools such as Yoast SEO, Google Tag Manager, and CookieYes for consent management. Hosting is provided by agenturserver, as indicated by the nameservers. The site demonstrates good mobile optimization and SEO practices, though performance is moderate. Security posture is solid with HTTPS enforced and reCAPTCHA implemented on forms, but could be improved by adding explicit security headers. No WAF or blocking mechanisms were detected, allowing full content access. Privacy compliance is strong with clear privacy and cookie policies and GDPR consent mechanisms. Contact information is transparent and includes multiple channels. However, no explicit security policy or incident response information is publicly available, and no vulnerability disclosure or security.txt file was found. Overall, suparo GmbH presents a trustworthy and professional digital marketing agency with a solid technical foundation and good privacy compliance. Strategic improvements in security headers and incident response transparency could further enhance their security posture and trustworthiness.

E

Ervy

ervy.app

71

Ervy is a technology company specializing in AI-powered workplace learning solutions integrated directly within Microsoft Teams. Their platform enables corporate HR teams to create, deliver, and track employee training efficiently, leveraging AI to convert company documents into bite-sized learning modules. Positioned as a niche SaaS provider, Ervy targets enterprises seeking seamless and engaging training experiences embedded in daily workflows. The website demonstrates a mature digital infrastructure built on WordPress with advanced analytics and marketing tools, reflecting a modern and professional online presence. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response details are absent. Overall, Ervy presents a credible and trustworthy business with strong market positioning in the corporate learning technology sector.

A

Atolls

atolls.com

70

Atolls is a globally recognized digital shopping engagement platform that empowers millions of consumers to make smarter spending decisions. The company operates multiple well-known brands such as hotukdeals, Coupons.com, and iGraal across 21 countries, positioning itself as a leader in the e-commerce affiliate marketing space. The website reflects a mature and professional digital presence with excellent content quality and user experience. Technically, the site is built on WordPress using modern tools like Elementor and Yoast SEO, hosted on Amazon AWS infrastructure, and incorporates analytics and consent management tools to comply with privacy regulations. Security posture is strong with HTTPS enforced and domain transfer protections in place, though DNSSEC is not enabled and some security headers could be improved. Privacy compliance is well addressed with clear privacy and cookie policies and a consent mechanism. Business credibility is high, supported by a long domain history and consistent branding. Overall, the website is trustworthy, well-optimized, and compliant with relevant regulations.

M

migosens

migosens.de

66

migosens is a German consulting firm specializing in data protection (DSGVO), management systems including ISO certification readiness, and employee competence development through their Work Smart approach. The company positions itself as a trusted advisor with nearly two decades of experience, emphasizing personalized solutions and a strong focus on employee motivation during organizational changes. Their website reflects a professional and consistent brand image, supported by trust indicators such as the kununu Top Company 2025 badge and a regularly updated blog. Technically, the website is built on WordPress using modern plugins like Yoast SEO, WPBakery Page Builder, and Podlove Podcasting. It employs HTTPS with excellent SSL configuration and includes a GDPR-compliant cookie consent mechanism. The site is mobile-optimized, accessible, and SEO-friendly, though some security headers could be improved. Analytics are implemented via Google Analytics through Google Tag Manager with anonymized data collection. From a security perspective, the site demonstrates good practices including HTTPS enforcement and no visible vulnerabilities or exposed sensitive data. However, it lacks explicit incident response contact details and a vulnerability disclosure policy. WHOIS data is minimal with generic name servers, which slightly reduces transparency but does not indicate malicious intent. Overall, migosens presents a low-risk profile with a solid security posture and strong privacy compliance. Strategic recommendations include enhancing security headers, publishing incident response information, and considering a security.txt file to improve transparency and trust.

D

Data & More

dataandmore.com

53

Data & More is a Denmark-based technology company specializing in GDPR compliance software solutions. Established in 2013, the company offers a suite of products including data deletion software, data privacy monitoring, data minimization management, and data subject management. Their market position is that of a trusted provider serving businesses globally, with certifications such as ISAE 3402 and ISAE 3000 reinforcing their credibility. The company targets organizations seeking automated data compliance and privacy enforcement tools. Technically, the website is built on WordPress with modern plugins and hosted via GoDaddy, leveraging AWS DNS infrastructure. The site is well-optimized for SEO and mobile devices, with multilingual support via Weglot. Security posture is solid with HTTPS enabled and domain protections in place, though DNSSEC is not enabled and some security headers are missing. Privacy compliance is good, with privacy and cookie policies present and consent mechanisms active. However, explicit security policies and incident response contacts are not found. Overall, the website is professional, trustworthy, and business-focused with no signs of malicious activity or content blocking.

D

Das Bett

das-bett-hannover.de

55

Das Bett is a German-based retail and service company specializing in sleep products such as beds, mattresses, pillows, and bedding accessories. Established in 1985, it offers personalized sleep consulting and a comprehensive online shop featuring its own brands. The company targets consumers seeking quality sleep solutions and personalized service, positioning itself as a trusted local expert with a strong digital presence. Technically, the website is built on WordPress with WooCommerce and uses modern plugins for SEO, e-commerce, and cookie management. The site is mobile-optimized and integrates payment via PayPal and appointment booking through a third-party service. Security posture is good with HTTPS and some security best practices, though some headers like CSP and HSTS are missing. Privacy compliance is partial, with a cookie consent mechanism but no explicit privacy policy or terms of service found in the provided content. Overall, the website is professional, trustworthy, and well-maintained, with room for improvement in security headers and privacy documentation.

M

milk&honey GmbH

milk-honey.de

51

Milk & Honey GmbH is a small hospitality business specializing in wellness, sauna, and beauty services located in Ludwigsburg, Germany. Their website presents a professional and well-structured digital presence, offering a broad range of spa and beauty treatments including massages, permanent makeup, and private spa packages. The company targets local customers seeking relaxation and wellness experiences. Technically, the website is built on WordPress with common plugins such as WPBakery Page Builder and Contact Form 7, hosted on kasserver.com. The site is mobile optimized and includes GDPR-compliant cookie consent mechanisms. Security posture is adequate with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. Overall, the website is trustworthy and compliant with privacy regulations, supporting a positive user experience.

M

Modehaus Havekost Övelgönne

modehaus-havekost.de

53

Modehaus Havekost is a well-established retail clothing business based in Germany, specializing in bridal wear, men's fashion, evening wear, and wedding rings. The company has a long history dating back to 1952 and positions itself as one of the largest and most innovative specialty fashion stores in the country. The website provides comprehensive information about their services, professional consultation, and exclusive offers, targeting brides, grooms, and customers seeking formal and casual fashion. Technically, the website is built on WordPress with the Divi theme and integrates modern marketing and analytics tools such as Google Analytics 4, Facebook Pixel, and TikTok Pixel, all managed with a GDPR-compliant cookie consent mechanism. Security posture is strong with HTTPS, security headers, and no detected vulnerabilities. Overall, the site is professional, trustworthy, and compliant with privacy regulations.

D

Davinci Brautmoden Stuttgart

davincisposa.com

46

Da Vinci Brautmoden Stuttgart is a specialized retail business offering bridal gowns, wedding dresses, and formal wear for brides and grooms in Stuttgart, Germany. Established in 2008, the company operates a professional website showcasing its collections and provides clear contact information including phone, email, and physical address. The website is built on WordPress with modern plugins and features video and image galleries to enhance user experience. Social media integration with Facebook and Instagram supports customer engagement. Technically, the site uses HTTPS and common web technologies but lacks advanced security headers and cookie consent mechanisms. No explicit security or incident response policies are published, indicating room for improvement in security posture and privacy compliance. Overall, the business appears legitimate and well-positioned locally with a good digital presence.

C

CAS Software AG

cas.de

59

CAS Software AG is a German market leader specializing in CRM and CPQ software solutions tailored for small to medium-sized enterprises and larger organizations. Their offerings include adaptive CRM systems integrated with AI assistants (AIA®) to enhance customer centricity and streamline business processes. The company emphasizes innovation, digital sovereignty, and customer-focused solutions, serving over 550,000 users across more than 35,000 organizations. The website reflects a mature digital presence with multilingual support and comprehensive service information. Technically, the website is built on WordPress with modern JavaScript frameworks such as Vue.js and Video.js, supported by Matomo analytics and Leadinfo tracking. The site is mobile-optimized, accessible, and SEO-friendly, though performance is moderate. Security posture is strong with HTTPS enforced and no exposed sensitive data, but could benefit from enhanced security headers and explicit cookie consent mechanisms. Overall, CAS Software AG demonstrates a high level of professionalism and trustworthiness, with clear contact channels and customer testimonials. However, the absence of a dedicated security policy page, incident response contacts, and vulnerability disclosure mechanisms suggests areas for improvement in security transparency and compliance. Strategically, the company should focus on enhancing privacy compliance by implementing cookie consent banners, publishing security policies, and establishing incident response contacts to strengthen trust and regulatory adherence.

D

DEKRA ELS

dekra-els.de

51

DEKRA ELS is a German-based service provider specializing in event and promotion personnel, professional vehicle transfers, and fleet management. The company operates under the DEKRA brand, indicating a strong market position within the transportation and event logistics sector. Their website is professionally designed using WordPress and the Divi theme, targeting businesses requiring staffing and logistic services for events. The technical infrastructure is modern and hosted on OVH, with standard plugins for cookie consent and analytics. Security posture is adequate with HTTPS enabled and cookie consent mechanisms in place, though the absence of explicit privacy policies, terms of service, and security policies indicates room for compliance improvement. No blocking or WAF challenges were detected, allowing full content access and analysis.

F

Frauen helfen Frauen e.V. Siegen

frauenhelfenfrauen-siegen.de

56

Frauen helfen Frauen e.V. Siegen is a small non-profit organization based in Germany dedicated to supporting women affected by sexualized violence and other challenges. The organization provides key services including a women's shelter (Frauenhaus), counseling services (Frauenberatungsstelle), and specialized support for sexualized violence. The website is well-structured, professionally designed, and targets women in need of support in the Siegen region. It reflects a local community-focused mission with clear contact information and service descriptions. Technically, the website is built on WordPress using modern themes and plugins such as Astra and Ultimate Addons for Gutenberg. It employs SEO best practices with Yoast SEO and includes structured data for enhanced search engine understanding. The site is mobile-optimized and loads with moderate performance. However, there is room for improvement in security headers and explicit cookie consent mechanisms. From a security perspective, the site uses HTTPS with a good SSL configuration, and no obvious vulnerabilities or exposed sensitive data were found. The absence of security headers and incident response information suggests opportunities to strengthen the security posture. Privacy policies are present and appear comprehensive, indicating GDPR compliance. Overall, the website presents a trustworthy and professional front for the non-profit organization, with a solid technical foundation and good content quality. Strategic improvements in security headers, cookie consent, and incident response disclosures would enhance compliance and trust further.

F

Frauennotruf Bielefeld e.V.

frauennotruf-bielefeld.de

56

Frauennotruf Bielefeld e.V. is a small non-profit organization based in Germany providing counseling and support services to women and girls aged 16 and above who have experienced sexualized violence. The organization offers anonymous, confidential, and free assistance including online and video consultations, psychosocial process support, and educational training. The website is well-structured, multilingual, and designed to be accessible and barrier-free, targeting a vulnerable audience with sensitivity and professionalism. Technically, the site is built on WordPress with common plugins such as Yoast SEO and Contact Form 7, hosted likely via a German hosting provider using UI-DNS name servers. The site is HTTPS secured with no visible critical vulnerabilities, though it lacks some advanced security headers and a cookie consent mechanism. Contact information is clearly presented, enhancing trust and credibility. Overall, the website demonstrates a good balance of content quality, technical implementation, and security posture appropriate for a non-profit counseling service.

M

MINDS + MACHINES GmbH

nic.nrw

58

domains.nrw is the official website promoting and managing the .nrw top-level domain, representing the German region Nordrhein-Westfalen. Operated by MINDS + MACHINES GmbH and registered through Registry Services, LLC and GoDaddy LLC, the site offers domain registration services, premium domain sales, and informational resources to residents and businesses in NRW. The business model focuses on regional digital identity and domain management, targeting local customers and enterprises. Technically, the website is built on WordPress with Elementor as the page builder, utilizing modern JavaScript libraries such as jQuery and Slick Slider for UI components. Hosting is provided by GoDaddy LLC, and the site employs HTTPS with a good SSL configuration. Google Analytics and Google Tag Manager are used for analytics and marketing tracking, indicating moderate user tracking. The site is mobile optimized and has good SEO practices, though accessibility is basic. From a security perspective, the site benefits from HTTPS and domain status protections but lacks DNSSEC, security headers, and published security policies or incident response contacts. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial, with a privacy policy and terms of service present but no cookie consent mechanism detected. Overall, domains.nrw presents a professional and trustworthy front for the .nrw domain registry with room for improvement in security hardening and privacy compliance. Strategic recommendations include enabling DNSSEC, implementing security headers, adding explicit incident response contacts, and deploying a cookie consent mechanism to enhance GDPR compliance.

P

Praktikum Lausitz

praktikum-lausitz.de

62

Praktikum Lausitz operates as a regional internship marketplace focused on connecting students, companies, and educators within the Lausitz region of Germany. The platform offers an easy-to-use interface for students to find and apply for internships without the need for a resume, targeting primarily young learners and local businesses. The website is built on WordPress using Elementor and Yoast SEO, indicating a modern and maintainable technical infrastructure. The hosting is managed via Google Domains, and the site employs Borlabs Cookie for GDPR-compliant cookie consent management. Security posture is generally good with HTTPS enforced and no blocking mechanisms detected, though the absence of security headers and explicit privacy and terms policies suggests room for improvement. Overall, the site presents a professional and trustworthy front for its educational mission.

C

comundus regisafe GmbH

comundus.com

68

comundus regisafe GmbH is a medium-sized German technology company specializing in tailored portal solutions based on the open-source Liferay platform. With over 20 years of experience, they provide digital workplace, customer, employee, HR portals, and intranet solutions designed to optimize business processes and enhance collaboration. The company operates under the parent group PDV.group and targets enterprise clients seeking integrated digital portals. Technically, the website is built on WordPress using the Enfold theme and several plugins, including Borlabs Cookie for GDPR-compliant consent management. The site is well-structured, mobile-optimized, and SEO-friendly. Security posture is solid with HTTPS and cookie consent mechanisms, though some advanced security headers and policies are not explicitly published. Overall, the website reflects a professional and trustworthy business with clear contact channels and social media presence.

X

X-BIONIC®

x-bionic.sk

50

X-BIONIC® operates an e-commerce platform specializing in functional sportswear, targeting athletes and sports enthusiasts primarily in Slovakia. The website is built on WordPress with WooCommerce, leveraging Yoast SEO for search optimization and Google Tag Manager for analytics and marketing. The platform demonstrates a good level of technical maturity with responsive design and moderate performance. However, the absence of explicit privacy and cookie policies, as well as lack of visible security headers and incident response information, indicates areas for improvement in compliance and security posture. Overall, the domain registration data aligns well with the business claims, supporting legitimacy. Strategic enhancements in privacy compliance and security best practices would strengthen trust and regulatory adherence.

O

Oblastna organizacia cestovneho ruchu Tekov

regiontekov.info

50

Oblastna organizacia cestovneho ruchu Tekov operates the website regiontekov.info as a regional tourism information portal for the Tekov region in Slovakia. The site provides comprehensive information on local attractions, cultural heritage, events, accommodation, and regional products, targeting tourists and visitors interested in exploring the area. The organization appears to be a small, regionally focused entity founded in 2017, supported by local and national tourism bodies. Technically, the website is built on WordPress using a standard theme and common plugins for analytics, social sharing, and cookie consent. The site is moderately performant with mobile optimization and basic accessibility features. Security posture is good with HTTPS enforced and cookie consent implemented, though security headers and incident response information are lacking. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, making it a reliable source for regional tourism information.

M

Mestská Polícia Levice

msplevice.sk

57

Mestská Polícia Levice operates as the official municipal police service for the city of Levice in Slovakia, providing local law enforcement and public safety services. The website serves as an informational portal for residents and visitors, offering contact details and emergency information. The business model is government-based, focusing on community safety and municipal policing. The site targets local citizens and stakeholders interested in municipal security matters. Technically, the website is built on the WordPress platform using the Elementor page builder and Font Awesome for icons. The infrastructure is typical for small government entities, with moderate performance and basic mobile optimization. SEO and accessibility features are present but minimal, reflecting a straightforward informational site. From a security perspective, the site uses HTTPS, ensuring encrypted communication. However, it lacks important security headers and does not provide privacy or cookie policies, which are critical for GDPR compliance. No vulnerability disclosure or incident response information is available, indicating room for improvement in security transparency and readiness. Overall, the website is functional and trustworthy as a municipal resource but would benefit from enhanced privacy compliance, security hardening, and transparency measures to improve user trust and regulatory adherence.

D

Deutscher Kinderschutzbund Ortsverband Dinslaken-Voerde e.V.

kinderschutzbund-dinslaken-voerde.de

59

The Deutscher Kinderschutzbund Ortsverband Dinslaken-Voerde e.V. is a small, local non-profit organization dedicated to child protection and youth services in Germany since 2001. Their website clearly communicates their mission, key services such as school social work, after-school care, youth work, and day care for young children. The organization targets children, youth, parents, and educators, emphasizing community support and child welfare. Technically, the website is built on WordPress with Elementor, featuring modern design and good mobile optimization. Security posture is strong with HTTPS and cookie consent mechanisms, though some security headers could be improved. Privacy compliance is well addressed with a comprehensive privacy policy and GDPR adherence. Overall, the site is trustworthy, professional, and aligned with the organization's mission.

G

Gewalt gegen Frauen beenden e.V.

autonome-frauenhaeuser-zif.de

41

The ZIF – Zentrale Informationsstelle autonomer Frauenhäuser is a German non-profit organization serving as the central information hub for autonomous women's shelters. It provides comprehensive resources, contact information, and support services aimed at ending violence against women and children. The organization is well-established with historical roots dating back to 1975 and maintains a clear presence through its website and social media channels. The website facilitates donations and offers multilingual content to reach a broad audience. Technically, the site is built on WordPress using a modern theme and plugins, with privacy-conscious analytics via Matomo. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

W

Werbeagentur Heimspiel GmbH

werbeagentur-heimspiel.de

48

Werbeagentur Heimspiel GmbH is a small, established marketing and publishing agency based in Borken, Germany, with over 35 years of experience. The company offers a broad range of services including print, digital marketing, social media, web design, marketing consulting, and image building. Their website reflects a professional and consistent brand image targeting businesses seeking comprehensive marketing solutions. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Slider Revolution, hosted on DomainControl.com nameservers. The site is mobile optimized and performs moderately well. Security posture is good with HTTPS enabled and no visible vulnerabilities, though security headers could be improved. Privacy compliance is basic with a privacy policy present but lacking a cookie consent mechanism. Overall, the website is trustworthy and professionally maintained, with clear contact information and legal disclosures.

V

Verlag Lensing-Wolff GmbH & Co. KG

halternerzeitung.de

67

Halterner Zeitung is a regional news media outlet operated by Verlag Lensing-Wolff GmbH & Co. KG, serving Haltern am See and surrounding areas in Germany. The website provides current news on sports, politics, economy, and culture with a focus on local relevance. The company is well-established since 1949 and maintains a strong local presence with a large employee base. Technically, the website is built on WordPress with modern SEO and analytics integrations, including Yoast SEO Premium, Snowplow Analytics, and a consent management platform ensuring GDPR compliance. Advertising is managed through Google Ad Manager and other networks with user consent mechanisms in place. Security posture is good with HTTPS enforced and respect for Do Not Track, though explicit security headers and published security policies are absent. Overall, the site is professional, trustworthy, and safe for general audiences.

D

die Urbanisten

dieurbanisten.de

55

Die Urbanisten is a small German organization focused on improving urban living through sustainable development and community participation. Their website reflects a niche consultancy and project development model, targeting local communities and urban planners. The site is built on WordPress with the Divi theme and integrates plugins for event management and GDPR compliance. Technically, the site is moderately performant, mobile-optimized, and uses HTTPS with a cookie consent mechanism, but lacks explicit privacy and security policies. Security posture is adequate but could be improved with additional headers and published policies. Overall, the site is professional and trustworthy within its domain but would benefit from enhanced compliance documentation and security transparency.

V

Ver- und Entsorgungsbetrieb Waltrop AöR

vue-waltrop.de

64

Ver- und Entsorgungsbetrieb Waltrop AöR is a municipal utility service provider based in Waltrop, Germany, specializing in waste management, wastewater services, street maintenance, and urban green space management. The website serves residents and businesses in the local area by providing information, forms, and service details. The organization holds a stable market position as a local government entity responsible for essential public services. The website is well-structured, with clear navigation and relevant content tailored to its audience. Technically, the site is built on WordPress using Elementor and Slider Revolution, indicating a modern and maintainable infrastructure. Performance and mobile optimization are adequate, though accessibility features are basic. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, but lacks explicit security headers and published security policies. Overall, the site is trustworthy and compliant with GDPR requirements, though it could improve transparency around security and incident response. No WAF or blocking mechanisms were detected, allowing full content access.

R

RE/init e.V.

reinit.de

55

RE/init e.V. is a small non-profit organization based in Germany focused on employment promotion initiatives, as indicated by the website title and description. The organization targets the general public and stakeholders interested in workforce development in the Recklinghausen region. The website is built on WordPress using modern plugins such as Yoast SEO and OpenStreetMap integration, hosted on UI-DNS infrastructure. The site demonstrates good design quality, mobile optimization, and SEO readiness but lacks comprehensive privacy and cookie policies, which are critical for GDPR compliance. Security posture is moderate with HTTPS enabled but missing advanced security headers and incident response information. Overall, the website is functional and professional but would benefit from enhanced compliance and security measures to improve trust and legal adherence.

K

Kreisstadt Unna, Bereich Kultur

kultur-in-unna.de

63

The website kultur-in-unna.de serves as the official cultural office portal for the city of Unna, Germany. It provides a cultural event calendar, ticketing services, newsletters, and information about composers, targeting residents and visitors interested in local cultural activities. The site is positioned as a government entity's digital presence, focusing on promoting cultural engagement within the community. Technically, the site is built on WordPress using the Elementor page builder and The Events Calendar plugin, hosted by SiteGround. It demonstrates good digital maturity with responsive design, accessibility features, and SEO optimization. Security-wise, the site enforces HTTPS, includes standard security headers, and implements GDPR-compliant cookie consent mechanisms. However, explicit security policies and incident response contacts are not published, representing areas for improvement. Overall, the site is trustworthy, professionally maintained, and compliant with privacy regulations, with no detected vulnerabilities or suspicious activity.